In this video, you will configure an SSL VPN tunnel that requires users to authenticate with a certificate.
The certificate, username, and password are used for two-factor authentication. When authorized users connect through the SSL VPN tunnel, the FortiGate checks the user certificate against its CA certificate. The user can then securely connect to the Internet and to resources on the Internal Network.
This recipe requires that you have three certificates:
• a Certificate Authority or CA certificate
• a server certificated signed by the CA certificate
• and a user certificate signed by the CA certificate
The certificates used in this video were created using OpenSSL.
Visit Fortinet's documentation library at http://docs.fortinet.com or our cookbook site at http://cookbook.fortinet.com.
Best viewed in 1080p.